What the vulnerability does
01Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks CRM Perks Forms.This issue affects CRM Perks Forms: from n/a through 1.1.4.
CVE-2024-30499
HIGH
CVE-2024-30499: WordPress CRM Perks Forms plugin <= 1.1.4 - SQL Injection vulnerability
CVSS base score
8.5/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
Key dates
02Disclosure timeline
March 29, 2024
CVE published
April 28, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-32203 WordPress Falling things Plugin <= 1.08 - SQL Injection vulnerability
CVE-2024-0301 fhs-opensource iparking PayTempOrderAction.java getData sql injection
CVE-2025-6307 code-projects Online Shoe Store edit_customer.php sql injection
CVE-2025-4314 SourceCodester Advanced Web Store index.php sql injection
CVE-2022-2137 Advantech iView
